Senior Security Engineer

Cluj-Napoca, Romania /
Engineering – Development /
Full-Time
/ Remote
At 8x8 Inc. [Nasdaq:EGHT] we put communications at the heart of our business and build technology that allows people to connect anytime, anywhere they are in the world, and on any device. XCaaS - the 8x8 eXperience Communications Platform - brings together Employee and Customer Experience, enabling hybrid workforces across the globe to connect, collaborate, and delight customers, while providing businesses with real-time communications analytics, intelligence and unique insights.

Learn more on our company website at www.8x8.com and follow our pages on LinkedIn, Twitter and Facebook.

____________________________________________________________________________________________________

We’re seeking a dedicated Senior Security Engineer with a passion for security and technology to help us secure our next generation communication platform. We sat down with Jason Calvert, who’s leading the Security Engineering team, to learn more about it and what makes someone successful in this role.

Jason, can you give us an overview of what this team member will be responsible for?
Well, I would say that the core responsibility consists in conducting source code analysis and dynamic security assessments to identify potential security issues, and then working with 8x8 technical teams to remediate any discovered vulnerabilities within defined SLAs.

That sounds really interesting. Can you tell us how your team currently ensures that all security requirements are met?
We do this through a variety of practices, ranging from performing manual penetration testing and source code review and participating and providing input in product architecture reviews, to providing guidance and support for security automation within CI/CD processes and procedures and assisting with researcher engagement in our bug bounty program, validation of reports, and driving timely remediation.

And what kind of skills should someone have to succeed in this role?
Ideally we would want a well-seasoned team member with previous experience in information security and, of course, enthusiasm for keeping updated with all things relevant to InfoSec. 

Okay, that sounds pretty broad, could you maybe be a bit more specific?
Good point, indeed, strong knowledge of web protocols is something that’s a must in this role. Hands-on experience with web application testing (such as Metasploit, BurpSuite, ZAP) and with source code analysis products (such as Github Advanced Security, Coverity, Veracode, Fortify, SonarQube etc.) is also something we’re looking for. Oh, and the final touch, we’re looking for someone who’s really well versed in OWASP Top 10 and CWE vulnerability classifications.

Anything that would be the ‘icing on the cake’?
Haha, glad you asked. Experience with cloud architecture (like AWS, OCI, GCP) and knowledge of SIP, XMPP, or other VoiP communication protocols would always come in handy with our infrastructure and industry. 

Thanks Jason. And one final question - what are you most excited about working with your team and at 8x8 in general?
Our company culture, notably the fact that everyone can make a difference and secure the future of remote work and telecommunications. Working in a large enterprise with a wide array of technologies and opportunity to always find something new and challenging with ability to make an impact.

I know I said it was the last question, but we all know there’s always a ‘final-final’, so here’s the final-final question for you - what is the best/ most rewarding part of this role?
Fostering collaboration and understanding on a secure global communication platform where anyone is just a video call away.
____________________________________________________________________________________________________

Some perks you’ll get to enjoy if you join us:

Wellness: you can expect a flexible work schedule and 25 annual leave days. On top of that, we also get a paid day off for any public holiday that falls on a Saturday or Sunday. Group Life Insurance and Private Pension.
Health: Private Medical Insurance (including dental)
Bonus: Participation in the company’s bonus scheme – based on company performance and individual performance
ESPP: Employee Stock Purchase Plan
On top of that, you can expect meal tickets, telecom allowance, newborn allowance, Christmas and Easter allowance, as well as the possibility to pick and choose from our Flexible Benefits Platform.


#LI-RO

For a closer look into what life at 8x8 International and the Cluj office look like check out our Instagram page.

8x8 believes diversity makes our company stronger which is why we are a proud equal opportunities employer and encourage all of our staff to bring their authentic selves to work. We believe in fairness and we believe in security so reserve the right to undertake background checks on anyone that we extend an employment offer to.
For European Job Applicants our Job Applicant Privacy Notice can be found here.